Privacy Policy

Last Updated: January 15, 2025

Our Commitment to Your Privacy

At gorge.rocks, we are committed to protecting your privacy and being transparent about how we collect, use, and safeguard your personal information. This Privacy Policy explains our practices regarding data collection and your rights concerning your personal information.

1. Information We Collect

1.1 Information You Provide Directly

  • Account Information: When you create an account, we collect your email address, username, and password (encrypted).
  • Profile Information: Optional information such as your display name, bio, location, and profile picture.
  • User-Generated Content: Information you submit including feature submissions, trip reports, photo uploads, comments, reviews, and quiz responses.
  • Newsletter Subscriptions: Email address when you subscribe to our newsletter.
  • Communications: Messages you send to us via email or contact forms.

1.2 Information Collected Automatically

  • Usage Data: Pages visited, features viewed, search queries, time spent on pages, and interaction patterns.
  • Device Information: Browser type, operating system, device type, IP address, and general location (city/region level only).
  • Analytics Data: We use Google Analytics 4 (GA4) with anonymized IP addresses to understand how users interact with our site.
  • Authentication Data: Login timestamps, authentication methods (password, passkeys, social login), and multi-factor authentication settings.

1.3 Information from Third Parties

  • Social Login: If you sign in using Google or GitHub, we receive your email address and basic profile information from these providers.
  • Public Data: Geological and geographical data from public sources, NASA, USGS, and other scientific databases.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Provide Services: To operate and maintain the platform, display geological features, process your submissions, and enable user interactions.
  • Account Management: To create and manage your account, authenticate users, and enable security features like MFA.
  • Personalization: To customize your experience, remember your preferences, and show relevant content.
  • Communications: To send you newsletters (if subscribed), respond to inquiries, and send important service updates.
  • Analytics and Improvement: To understand usage patterns, improve our features, fix bugs, and enhance user experience.
  • Content Moderation: To review user submissions, prevent spam, enforce our terms of service, and maintain content quality.
  • Security: To protect against fraud, abuse, and unauthorized access.
  • Legal Compliance: To comply with legal obligations and respond to lawful requests.

3. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • Public Content: Content you publicly post (submissions, comments, photos) is visible to all users and may be indexed by search engines.
  • Service Providers: We share data with trusted service providers who help us operate the platform (hosting, email delivery, analytics). These providers are contractually obligated to protect your data.
  • Analytics Partners: Google Analytics (with IP anonymization enabled) for usage analytics.
  • Authentication Providers: Supabase for authentication and database services.
  • Legal Requirements: When required by law, legal process, or to protect our rights and safety.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred to the new entity.

4. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience and understand how you use our site.

Types of Cookies We Use:

  • Essential Cookies: Required for authentication, security, and basic functionality. These cannot be disabled.
  • Analytics Cookies: Google Analytics 4 cookies (optional) to understand usage patterns. You can opt-out via our Cookie Settings.
  • Preference Cookies: Remember your theme preferences (dark/light mode) and other settings.

Manage Your Cookie Preferences: You can control analytics cookies through our or your browser settings.

5. Data Security

We implement industry-standard security measures to protect your personal information:

  • All data transmitted between your browser and our servers is encrypted using HTTPS/TLS.
  • Passwords are hashed using bcrypt and never stored in plain text.
  • Multi-factor authentication (MFA) is available and required for admin accounts.
  • Database access is restricted with role-based permissions and Row Level Security (RLS).
  • Regular security audits and monitoring for suspicious activity.
  • Data backups are encrypted and stored securely.

While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

6. Your Rights and Choices

You have the following rights regarding your personal information:

Access and Portability

Request a copy of your personal data in a portable format.

Correction

Update or correct inaccurate information through your account settings.

Deletion

Request deletion of your account and associated data. Note: Public contributions may be retained in anonymized form.

Opt-Out of Analytics

Disable analytics cookies via Cookie Settings.

Newsletter Unsubscribe

Unsubscribe from newsletters using the link in any email or through your account settings.

To exercise these rights, contact us at privacy@gorge.rocks. We will respond within 30 days.

7. Children's Privacy

Our service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@gorge.rocks, and we will delete such information.

8. International Data Transfers

Your information may be transferred to and maintained on servers located outside your state, province, country, or other governmental jurisdiction. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable data protection laws.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on our website or sending you an email. Your continued use of the service after changes become effective constitutes acceptance of the updated policy.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

gorge.rocks Privacy Team

Email: privacy@gorge.rocks

General Contact: hello@gorge.rocks

View Terms of Service →Manage Cookie Preferences →